summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2017-11-15KEYS: trusted: sanitize all key materialEric Biggers1-28/+22
2017-11-08KEYS: return full count in keyring_read() if buffer is too smallEric Biggers1-20/+19
2017-10-27KEYS: Fix race between updating and finding a negative keyDavid Howells12-39/+49
2017-10-27KEYS: don't let add_key() update an uninstantiated keyDavid Howells1-0/+10
2017-10-27KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers1-0/+7
2017-10-12lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler1-30/+25
2017-10-05KEYS: prevent KEYCTL_READ on negative keyEric Biggers1-0/+5
2017-10-05KEYS: prevent creating a different user's keyringsEric Biggers4-12/+23
2017-10-05KEYS: fix writing past end of user-supplied buffer in keyring_read()Eric Biggers1-9/+5
2017-07-15KEYS: Fix an error code in request_master_key()Dan Carpenter1-1/+1
2017-06-14KEYS: fix freeing uninitialized memory in key_update()Eric Biggers1-3/+2
2017-06-14KEYS: fix dereferencing NULL payload with nonzero lengthEric Biggers1-2/+2
2017-05-25ima: accept previously set IMA_NEW_FILEDaniel Glöckner1-2/+3
2017-04-27KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyringsEric Biggers2-24/+31
2017-04-27KEYS: Change the name of the dead type to ".dead" to prevent user accessDavid Howells1-1/+1
2017-04-27KEYS: Disallow keyrings beginning with '.' to be joined as session keyringsDavid Howells1-2/+7
2017-02-15selinux: fix off-by-one in setprocattrStephen Smalley1-1/+1
2016-12-02apparmor: fix change_hat not finding hat after policy replacementJohn Johansen1-2/+4
2016-11-10KEYS: Fix short sprintf buffer in /proc/keys show functionDavid Howells1-1/+1
2016-10-16ima: use file_dentry()Miklos Szeredi2-3/+3
2016-08-16apparmor: fix ref count leak when profile sha1 hash is readJohn Johansen1-0/+1
2016-07-27KEYS: potential uninitialized variableDan Carpenter1-1/+1
2016-03-04security: let security modules use PTRACE_MODE_* with bitmasksJann Horn2-7/+5
2016-02-25ptrace: use fsuid, fsgid, effective creds for fs access checksJann Horn1-1/+6
2016-02-17EVM: Use crypto_memneq() for digest comparisonsRyan Ware1-1/+2
2016-01-31KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats1-0/+1
2015-12-19KEYS: Fix race between read and revokeDavid Howells1-9/+9
2015-11-26Merge branch 'upstream' of git://git.infradead.org/users/pcmoore/selinux into...James Morris1-2/+2
2015-11-25KEYS: Fix handling of stored error in a negatively instantiated user keyDavid Howells3-2/+10
2015-11-24selinux: fix bug in conditional rules handlingStephen Smalley1-2/+2
2015-11-11Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netLinus Torvalds3-9/+10
2015-11-09smack: use skb_to_full_sk() helperEric Dumazet1-4/+7
2015-11-09net: add skb_to_full_sk() helper and use it in selinux_netlbl_skbuff_setsid()Eric Dumazet2-15/+3
2015-11-07mm, page_alloc: rename __GFP_WAIT to __GFP_RECLAIMMel Gorman1-1/+1
2015-11-06Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds25-183/+393
2015-11-06selinux: fix random read in selinux_ip_postroute_compat()Eric Dumazet1-4/+14
2015-11-01Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller2-2/+7
2015-10-23Merge tag 'keys-next-20151021' of git://git.kernel.org/pub/scm/linux/kernel/g...James Morris13-75/+84
2015-10-22Merge branch 'upstream' of git://git.infradead.org/users/pcmoore/selinux into...James Morris5-45/+36
2015-10-22apparmor: clarify CRYPTO dependencyArnd Bergmann1-1/+1
2015-10-22selinux: Use a kmem_cache for allocation struct file_security_structSangwoo1-2/+6
2015-10-22selinux: ioctl_has_perm should be staticGeliang Tang1-1/+1
2015-10-22selinux: use sprintf return valueRasmus Villemoes1-4/+1
2015-10-22selinux: use kstrdup() in security_get_bools()Rasmus Villemoes1-7/+1
2015-10-22selinux: use kmemdup in security_sid_to_context_core()Rasmus Villemoes1-2/+2
2015-10-22selinux: remove pointless cast in selinux_inode_setsecurity()Rasmus Villemoes1-1/+1
2015-10-22selinux: introduce security_context_str_to_sidRasmus Villemoes4-25/+20
2015-10-22selinux: do not check open perm on ftruncate callJeff Vander Stoep1-1/+2
2015-10-22selinux: change CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE defaultPaul Moore1-2/+2
2015-10-21KEYS: Merge the type-specific data with the payload dataDavid Howells13-67/+82
generated by cgit v1.2.3 (git 2.39.0) at 2024-07-01 16:29:03 +0300